CVE-2009-0561

CWE-1894 documents4 sources

Severity

9.3CRITICAL

EPSS

65.5%

top 1.51%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Office Microsoft Office Excel Microsoft Office Excel Viewer +1 more

Timeline

PublishedJun 10

Latest updateMay 2

Description

Integer overflow in Excel in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP3, and Office 2004 and 2008 for Mac; Excel in 2007 Microsoft Office System SP1 and SP2; Open XML File Format Converter for Mac; Microsoft Office Excel Viewer 2003 SP3; Microsoft Office Excel Viewer; Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2; and Microsoft Office SharePoint Server 2007 SP1 and SP2 allows remote attackers to execute arbitrary code via an Exce…

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages4 packages

▶NVDmicrosoft/office_excel_viewer2003

▶NVDmicrosoft/office_excel2000, 2003, 2007+2

▶NVDmicrosoft/office_sharepoint_server2007

▶NVDmicrosoft/office2004, 2008, xp+2

🔴Vulnerability Details

GHSA

GHSA-5q7x-rmh4-jxrr: Integer overflow in Excel in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP3, and Office 2004 and 2008 for Mac; Excel in 2007 Microsoft Offi↗2022-05-02

▶

CVEList

CVE-2009-0561: Integer overflow in Excel in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP3, and Office 2004 and 2008 for Mac; Excel in 2007 Microsoft Offi↗2009-06-10

▶

VulnCheck

Microsoft Office Excel Record Integer Overflow↗2009

▶